Microsoft Defender
      Back to home
      1. Sittadel Knowledge Base
      2. Management Guides
      3. Microsoft Defender

      Defender for Email DKIM Domain Modification

      This guide will show an administrator how to rotate an existing DKIM signature keys to reinstate a proper DKIM configuration for the owned domain.

      Role Requirements

      Procedure Scope: Administrators

      Required Group Membership: Admin.Security

      Handbook Reference

      Package: TBD

      Domain: TBD

      Modifies: TBD

      Defender DKIM Signature Modification

      1. Navigate to the DKIM Email Authentication – Microsoft Defender portal, locate and select the domain you wish to modify the current DKIM records for. From the generated flyout locate and select the Rotate DKIM keys action, this will require that you Copy the newly generated CNAME records to DNS. Copy these records, perform the DNS addition and publication as your DNS provider recommends.
      2. Once you have added the necessary records to your DNS provider, return to the DKIM page and reselect the domain that the rotated CNAME records have been created for. In the window, select the Enable ribbon. If the records have been configured successfully, the switch will turn to Enabled and outbound mail will be DKIM signed.

      Need Assistance?

      Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.